Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 09-01-2021
Exécuté par acer (administrateur) sur FANNY (Acer Aspire E5-573) (10-01-2021 15:37:22)
Exécuté depuis C:\Users\acer\Desktop
Profils chargés: acer
Platform: Windows 10 Home Version 1909 18363.1256 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Acer Incorporated -> ) C:\Program Files (x86)\Acer\Care Center\ACCStd.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerButton_NB.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QAAdminAgent.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QAAgent.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QALockHandler.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QALSvc.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QASvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Apple Inc. -> Apple, Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler64.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) [Fichier non signé] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxext.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office15\FIRSTRUN.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Users\acer\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2011.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2011.6-0\NisSrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe <8>
(Opera Software AS -> Opera Software) C:\Users\acer\AppData\Local\Programs\Opera\assistant\browser_assistant.exe <2>
(Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\AdminService.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14040792 2015-07-07] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176952 2016-06-01] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-1293780366-1007830035-156262364-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2018-06-26] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-1293780366-1007830035-156262364-1001\...\Run: [iCloudPhotos] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [356664 2018-06-26] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-1293780366-1007830035-156262364-1001\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [67896 2018-06-26] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-1293780366-1007830035-156262364-1001\...\Run: [Opera Browser Assistant] => C:\Users\acer\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3366424 2020-12-16] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-1293780366-1007830035-156262364-1001\...\MountPoints2: {fa3e2b7c-d42d-11ea-9c42-3052cb4739d6} - "E:\HiSuiteDownLoader.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.141\Installer\chrmstp.exe [2021-01-09] (Google LLC -> Google LLC)

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {09CE6CEE-477B-4648-A0C7-DE16A0FE38CC} - System32\Tasks\Opera scheduled Autoupdate 1609786847 => C:\Users\acer\AppData\Local\Programs\Opera\launcher.exe [1583256 2021-01-05] (Opera Software AS -> Opera Software)
Task: {151B9FC1-AC72-4579-8AE4-38BA70557648} - System32\Tasks\Norton Security\Norton Security Autofix => C:\Program Files (x86)\Norton Security\Engine\22.20.5.39\SymErr.exe
Task: {153939FF-1862-4322-9977-7A54431BA2D8} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320 2018-01-08] (Apple Inc. -> Apple Inc.)
Task: {2837821E-4E4F-4D43-B1C0-96F051D8BF8B} - System32\Tasks\Power Button => C:\Program Files\Acer\Acer Power Management\ePowerButton_NB.exe [2770688 2015-05-14] (Acer Incorporated -> Acer Incorporated)
Task: {29F36F54-7ADD-47ED-9E39-BB75885D1335} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {2BF32421-A4B1-4A49-BDD3-583C1E46AFE6} - System32\Tasks\Norton Security\Norton Security Error Analyzer => C:\Program Files (x86)\Norton Security\Engine\22.20.5.39\SymErr.exe
Task: {38CF17C0-415C-43E5-A6A6-EFD1F719E9C2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3A4B63DF-1D8E-4CC8-927E-323F245E50CE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-03-21] (Google LLC -> Google LLC)
Task: {4DB20E96-CF32-4365-8658-ED95F510571F} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [693216 2021-01-10] (Mozilla Corporation -> Mozilla Foundation)
Task: {4EE0B6B9-4DC4-404E-9223-9DFF4E6BC12A} - System32\Tasks\BacKGroundAgent => C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [65752 2017-03-20] (Acer Incorporated -> Acer Incorporated)
Task: {4F117C79-2706-4FBF-A748-C0259F51CEFA} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [472928 2015-09-04] (Acer Incorporated -> Acer Incorporated)
Task: {6A1AECEC-0766-473B-AE79-EAAA31DE758F} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [40288 2015-07-10] (Acer Incorporated -> )
Task: {6A250F7B-4F8A-4FEA-8CAE-31F28DA85202} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [4580704 2015-07-10] (Acer Incorporated -> )
Task: {768BFDC7-ED80-4E98-AF07-F31724D070E2} - System32\Tasks\FUBTrackingByPLD => C:\OEM\Preload\FubTracking\FubTracking.exe [30976 2015-05-14] (Acer Incorporated -> )
Task: {78FB8E86-1C9F-4E6C-960C-134A69797348} - System32\Tasks\AviraSystemSpeedupRemoval => %comspec% [Argument = /C rmdir "C:\Program Files (x86)\Avira\System Speedup" /S /Q & schtasks /Delete /F /TN AviraSystemSpeedupRemoval] -> /C rmdir "C:\Program Files (x86)\Avira\System Speedup" /S /Q & schtasks /Delete /F /TN AviraSystemSpeedupRemoval
Task: {89F41462-C158-4E08-AC74-B88D8F16AEC1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-03-21] (Google LLC -> Google LLC)
Task: {944BE714-831C-4B99-9A9E-2F31A8BEA968} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTrayLauncher.exe [384256 2015-05-14] (Acer Incorporated -> Acer Incorporated)
Task: {9BC806A9-32EA-4E59-9044-BB5A6B5075F9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9FE2E5BD-13B9-472A-8911-3B5FE5F4B9A2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A1C03D06-576B-47F4-9C48-9D036AA29169} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A4F73379-4A82-4AA4-B619-E2FBC426B6A2} - System32\Tasks\Quick Access => C:\Program Files\Acer\Acer Quick Access\QALauncher.exe [383840 2015-09-04] (Acer Incorporated -> Acer Incorporated)
Task: {A6DFE754-2977-4B4C-98F6-7CC8BD5E54FE} - System32\Tasks\Microsoft\Office\Microsoft Office Touchless Attach Notification => C:\Program Files (x86)\Microsoft Office\Office15\FirstRun.exe [989864 2015-03-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {D4DBDFD0-BA12-40D7-B991-62916FC88076} - System32\Tasks\Norton Security\Norton Security Error Processor => C:\Program Files (x86)\Norton Security\Engine\22.20.5.39\SymErr.exe
Task: {F1FAF4DC-C139-41C6-AB58-2BB1B0AE8EC7} - System32\Tasks\{416FE3CE-D018-45BC-83A8-B690510C5477} => "c:\windows\system32\launchwinapp.exe" http://ui.skype.com/ui/0/7.25.0.106/fr/go/help.faq.installer?source=lightinstaller&LastError=1618
Task: {FBE1992D-A1B2-44DD-9601-A1A2F799B096} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2858336 2015-07-10] (Acer Incorporated -> )
Task: {FD8714BC-5598-4691-B480-E0C561042FF4} - System32\Tasks\Opera scheduled assistant Autoupdate 1609786868 => C:\Users\acer\AppData\Local\Programs\Opera\launcher.exe [1583256 2021-01-05] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\acer\AppData\Local\Programs\Opera\assistant" $(Arg0)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)


==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{63b6286e-e5c5-4951-bdc9-53586882d159}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{ae5eaef3-b42f-471b-b7db-9aea268d66c6}: [DhcpNameServer] 192.168.1.254

Edge:
======
Edge DefaultProfile: Default
Edge Profile: C:\Users\acer\AppData\Local\Microsoft\Edge\User Data\Default [2021-01-04]

FireFox:
========
FF DefaultProfile: idxd9nvc.default
FF ProfilePath: C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\idxd9nvc.default [2021-01-10]
FF Homepage: Mozilla\Firefox\Profiles\idxd9nvc.default -> www.google.fr
FF Notifications: Mozilla\Firefox\Profiles\idxd9nvc.default -> hxxp://www.flvto.biz
FF Extension: (Français Language Pack) - C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\idxd9nvc.default\Extensions\langpack-fr@firefox.mozilla.org.xpi [2021-01-04]
FF Extension: (Norton Safe Search) - C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\idxd9nvc.default\Extensions\nortonsafesearch_ul_2@symantec.com.xpi [2020-11-02] [UpdateUrl:hxxps://static.nortoncdn.com/idscp/firefox/nsss/ds_modified/updates.json]
FF Extension: (wanteeed) - C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\idxd9nvc.default\Extensions\{EDB6A15C-5F8C-4531-92FA-98E988CF233C}.xpi [2020-12-13] [UpdateUrl:hxxps://app.wanteeed.com/extensions/update_firefox.json]
FF Extension: (Français Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-fr@firefox.mozilla.org [2021-01-10] [] [non signé]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_22_0_0_209.dll [2016-07-18] (Adobe Systems Incorporated -> )
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_209.dll [2016-07-18] (Adobe Systems Incorporated -> )
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-12-18] (Apple Inc. -> )
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)

Chrome:
=======
CHR Profile: C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default [2021-01-06]
CHR Notifications: Default -> hxxps://meet.google.com; hxxps://tinder.com
CHR Extension: (Slides) - C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-03-21]
CHR Extension: (Docs) - C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-03-21]
CHR Extension: (Google Drive) - C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-09]
CHR Extension: (YouTube) - C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-03-21]
CHR Extension: (Avira Password Manager) - C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2021-01-06]
CHR Extension: (Sheets) - C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-03-21]
CHR Extension: (Google Docs hors connexion) - C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-16]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-03-21]
CHR Extension: (Gmail) - C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-09]
CHR Extension: (Chrome Media Router) - C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-01-06]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-03-02] (Apple Inc. -> Apple Inc.)
S2 Dashlane Upgrade Service; C:\Program Files (x86)\Dashlane\Upgrade\DashlaneUpgradeService.exe [75056 2015-06-24] (Dashlane -> Dashlane SAS)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2573568 2015-05-14] (Acer Incorporated -> Acer Incorporated)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Fichier non signé]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Fichier non signé]
R3 QALSvc; C:\Program Files\Acer\Acer Quick Access\QALSvc.exe [401248 2015-09-04] (Acer Incorporated -> Acer Incorporated)
R3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [453984 2015-09-04] (Acer Incorporated -> Acer Incorporated)
S3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [247040 2015-05-27] (Acer Incorporated -> acer)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\NisSrv.exe [2491880 2020-12-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MsMpEng.exe [128376 2020-12-10] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [31000 2018-05-15] (Acer Incorporated -> Acer Incorporated)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2015-11-05] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [25368 2018-05-15] (Acer Incorporated -> Acer Incorporated)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2015-11-05] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2020-12-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [429296 2020-12-10] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [70896 2020-12-10] (Microsoft Windows -> Microsoft Corporation)
U3 avgbdisk; pas de ImagePath

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-01-10 14:33 - 2021-01-10 14:40 - 000028725 _____ C:\Users\acer\Desktop\Addition.txt
2021-01-10 14:28 - 2021-01-10 15:38 - 000021864 _____ C:\Users\acer\Desktop\FRST.txt
2021-01-10 14:27 - 2021-01-10 15:38 - 000000000 ____D C:\FRST
2021-01-10 14:25 - 2021-01-10 14:26 - 002281472 _____ (Farbar) C:\Users\acer\Desktop\FRST64.exe
2021-01-10 14:25 - 2021-01-10 14:25 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-01-10 14:19 - 2021-01-10 14:19 - 000003432 _____ C:\WINDOWS\system32\Tasks\AviraSystemSpeedupRemoval
2021-01-10 14:18 - 2021-01-10 14:18 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avira
2021-01-10 11:41 - 2021-01-10 14:23 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2021-01-09 11:24 - 2021-01-09 11:24 - 000000000 ____D C:\Users\acer\AppData\Local\RoboForm
2021-01-09 11:23 - 2021-01-09 11:23 - 000000000 ____D C:\Program Files (x86)\Siber Systems
2021-01-09 11:21 - 2021-01-09 11:22 - 024704232 _____ (Siber Systems) C:\Users\acer\Downloads\RoboForm-v8-Setup.exe
2021-01-05 00:20 - 2021-01-05 00:20 - 002045952 _____ C:\WINDOWS\system32\rdpnano.dll
2021-01-05 00:20 - 2021-01-05 00:20 - 000171008 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-01-05 00:20 - 2021-01-05 00:20 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncpa.cpl
2021-01-05 00:20 - 2021-01-05 00:20 - 000000357 _____ C:\WINDOWS\system32\DrtmAuth14.bin
2021-01-05 00:20 - 2021-01-05 00:20 - 000000357 _____ C:\WINDOWS\system32\DrtmAuth13.bin
2021-01-05 00:20 - 2021-01-05 00:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2021-01-05 00:20 - 2021-01-05 00:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2021-01-05 00:20 - 2021-01-05 00:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2021-01-05 00:20 - 2021-01-05 00:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2021-01-05 00:20 - 2021-01-05 00:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2021-01-05 00:20 - 2021-01-05 00:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2021-01-05 00:20 - 2021-01-05 00:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2021-01-05 00:20 - 2021-01-05 00:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2021-01-05 00:20 - 2021-01-05 00:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth18.bin
2021-01-05 00:20 - 2021-01-05 00:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth17.bin
2021-01-05 00:20 - 2021-01-05 00:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth16.bin
2021-01-05 00:20 - 2021-01-05 00:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth15.bin
2021-01-05 00:20 - 2021-01-05 00:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2021-01-05 00:20 - 2021-01-05 00:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2021-01-05 00:20 - 2021-01-05 00:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2021-01-05 00:20 - 2021-01-05 00:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2021-01-05 00:19 - 2021-01-05 00:19 - 001756600 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-01-05 00:19 - 2021-01-05 00:19 - 001366144 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-01-05 00:19 - 2021-01-05 00:19 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncpa.cpl
2021-01-05 00:19 - 2021-01-05 00:19 - 000059392 _____ C:\WINDOWS\system32\runexehelper.exe
2021-01-05 00:19 - 2021-01-05 00:19 - 000001370 _____ C:\WINDOWS\system32\ThirdPartyNoticesBySHS.txt
2021-01-04 21:43 - 2021-01-04 21:43 - 000000000 ____D C:\Users\Public\Security Sessions
2021-01-04 21:26 - 2021-01-04 21:26 - 000000000 ____D C:\Users\acer\AppData\Local\CEF
2021-01-04 21:18 - 2021-01-04 21:39 - 000000000 ____D C:\ProgramData\AVG
2021-01-04 21:14 - 2021-01-04 21:14 - 030536752 _____ (Piriform Software Ltd) C:\Users\acer\Downloads\ccsetup575.exe
2021-01-04 20:39 - 2021-01-04 20:39 - 000000000 ____D C:\Users\acer\AppData\Local\mbam
2021-01-04 20:38 - 2021-01-04 20:38 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-01-04 20:36 - 2021-01-04 20:36 - 002086424 _____ (Malwarebytes) C:\Users\acer\Downloads\MBSetup.exe
2021-01-04 20:01 - 2021-01-09 11:13 - 000004168 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1609786847
2021-01-04 20:01 - 2021-01-04 20:01 - 000004394 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1609786868
2021-01-04 20:00 - 2021-01-09 11:13 - 000001390 _____ C:\Users\acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2021-01-04 20:00 - 2021-01-04 20:00 - 000001384 _____ C:\Users\acer\Desktop\Navigateur Opera.lnk
2021-01-04 20:00 - 2021-01-04 20:00 - 000000000 ____D C:\Users\acer\AppData\Roaming\Opera Software
2021-01-04 19:56 - 2021-01-04 19:56 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_avusbflt_01011.Wdf
2021-01-04 19:48 - 2021-01-04 21:43 - 000000000 ____D C:\Users\acer\AppData\Local\Avira
2021-01-04 19:45 - 2021-01-10 14:20 - 000000000 ____D C:\Program Files (x86)\Avira
2021-01-04 19:45 - 2021-01-10 14:19 - 000000000 ____D C:\ProgramData\Avira
2021-01-04 19:40 - 2021-01-04 19:40 - 004528872 _____ (Avira Operations GmbH & Co. KG) C:\Users\acer\Downloads\avira_fr_sptl1_688587194-1609785630__adwc-spotlight-branded.exe

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-01-10 15:36 - 2020-02-02 18:57 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-01-10 15:36 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-01-10 15:34 - 2020-02-02 19:15 - 000004154 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{13B6F787-4B2C-4353-B8A3-56ADB6EF1AC6}
2021-01-10 14:38 - 2015-08-31 11:51 - 000000000 ____D C:\ProgramData\Mozilla
2021-01-10 14:37 - 2016-11-20 19:08 - 000000000 ____D C:\Users\acer\AppData\LocalLow\Mozilla
2021-01-10 14:35 - 2019-03-19 05:50 - 000000000 ____D C:\WINDOWS\INF
2021-01-10 14:25 - 2015-08-31 11:51 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-01-10 14:23 - 2015-08-31 11:51 - 000001236 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-01-10 14:21 - 2020-02-02 19:15 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-01-10 14:21 - 2017-05-22 21:36 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2021-01-10 14:21 - 2016-06-09 14:15 - 000000000 __SHD C:\Users\acer\IntelGraphicsProfiles
2021-01-10 14:20 - 2019-03-19 05:37 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-01-10 14:19 - 2015-11-23 15:59 - 000000000 ____D C:\ProgramData\Package Cache
2021-01-10 14:17 - 2019-03-19 05:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-01-10 12:33 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps
2021-01-10 12:33 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-01-10 12:17 - 2020-02-02 19:28 - 000013338 _____ C:\WINDOWS\diagwrn.xml
2021-01-10 12:17 - 2020-02-02 19:28 - 000013338 _____ C:\WINDOWS\diagerr.xml
2021-01-10 12:17 - 2019-03-19 05:37 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2021-01-10 12:03 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\Registration
2021-01-10 12:02 - 2019-12-07 16:30 - 000000000 ___HD C:\$WINDOWS.~BT
2021-01-10 11:53 - 2019-10-09 18:01 - 000000000 ___DC C:\WINDOWS\Panther
2021-01-10 11:53 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-01-09 11:49 - 2020-08-01 20:37 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-01-09 11:49 - 2020-08-01 20:37 - 000002284 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-01-06 19:40 - 2020-02-02 19:19 - 001779348 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-01-06 19:40 - 2019-03-19 13:00 - 000795984 _____ C:\WINDOWS\system32\perfh00C.dat
2021-01-06 19:40 - 2019-03-19 13:00 - 000151138 _____ C:\WINDOWS\system32\perfc00C.dat
2021-01-06 19:35 - 2018-03-22 03:01 - 000000000 ___RD C:\Users\acer\3D Objects
2021-01-06 19:35 - 2015-08-31 11:49 - 000000000 __RHD C:\Users\Public\AccountPictures
2021-01-06 19:33 - 2020-02-02 18:57 - 000442432 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-01-05 07:06 - 2019-03-19 05:52 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-01-05 07:06 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-01-05 07:06 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SystemResources
2021-01-05 07:06 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-01-05 07:06 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2021-01-05 07:06 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-01-05 07:06 - 2019-03-19 05:52 - 000000000 ____D C:\Program Files\Windows Defender
2021-01-05 07:06 - 2019-03-19 05:52 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2021-01-05 00:24 - 2019-03-19 05:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-01-04 21:23 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-01-04 21:23 - 2016-08-12 16:27 - 000000000 ____D C:\Users\acer\AppData\Local\CrashDumps
2021-01-04 20:17 - 2016-10-15 12:14 - 000000000 ____D C:\ProgramData\Norton
2021-01-04 20:10 - 2017-04-18 12:44 - 000000000 ___RD C:\Program Files (x86)\Skype
2021-01-04 20:10 - 2016-07-11 16:08 - 000000000 ____D C:\ProgramData\Skype
2021-01-04 20:09 - 2020-11-16 18:41 - 000000000 ____D C:\WINDOWS\system32\Tasks\Remediation
2021-01-04 20:09 - 2016-07-11 16:10 - 000000000 ____D C:\Users\acer\AppData\Roaming\Skype
2021-01-04 20:06 - 2018-03-22 02:38 - 000000000 ____D C:\Users\acer\AppData\Local\Packages
2020-12-13 11:37 - 2020-02-02 19:15 - 000003356 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1293780366-1007830035-156262364-1001
2020-12-13 11:36 - 2020-11-02 09:50 - 000002402 _____ C:\Users\acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-12-13 11:36 - 2016-06-09 14:21 - 000000000 ___RD C:\Users\acer\OneDrive
2020-12-13 11:26 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\NDF

==================== Fichiers à la racine de certains dossiers ========

2016-08-12 18:08 - 2016-08-12 22:33 - 000003584 _____ () C:\Users\acer\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================